Open source IT automation
Unlock powerful IT automation where you need it: whether you’re working with bare metal, overseeing the infrastructure that sits on top, or managing apps and services. Deliver cost savings, seamless integration, and easy compliance pathways with automation that works on any cloud or infrastructure type.
Fast, simple,
and trusted automation
We offer IT automation solutions to simplify deployment, management, scaling, configurations and compliance.
It works, anywhere
Get automation solutions that work seamlessly no matter what your tech is or where it’s deployed — bare metal, VMs, private, public, or hybrid environments.
Save time and money
Highly performant automation options for a wide selection of use cases, designed to drive significant costs savings.
Trusted and transparent
Unlike most automation tools, our software, automations, and orchestrators are open source — giving you transparency and confidence to operate.
Turn bare metal
into on-demand resources
Transform physical servers into on-demand resources and build a cloud infrastructure without breaking a sweat.
Quickly provision or tear down physical and virtual servers
Remotely install operating systems and software, and quickly provision server resources on any bare metal, hybrid, private, or public cloud infra.
- Create the cloud and server environment you need, and automate everything from scaling to long term maintenance.
- Make your bare metal preparations reliable, repeatable, and efficient.
- Automatically discover all devices over your network, for lightning-fast server configuration.
Manage, secure, upgrade, monitor, and inventory all versions of Ubuntu
Manage all of your desktop, server, and cloud deployments, anywhere, from a single portal. Automate installation, configuration, compliance audits, and monitoring.
- Reduce the cost of managing open source with a single pane of glass for containers, virtual machines, and physical nodes, anywhere.
- Seamless 3rd party integrations with a versioned RESTful API and CLI utility.
- Manage desktop, server and cloud deployments at enterprise-scale.
- Distribute software packages with local mirrors, and control the flow of updates from staging to production for all your open source software.
Build your easiest, most performant cloud yet
Create and scale highly available and resource-efficient cloud services that grow as your organization does.
- Deploy highly available clusters in minutes.
- Replicate and scale your cloud across any hardware.
- Automate deployment and on-site operations, with low to no-site maintenance.
- Automatically roll out security updates and streamlined upgrades across your entire cloud infrastructure.
Moving from the public cloud to bare metal using Canonical’s open source tools saved OneUptime $352,500 a year, or around 76% of their total cloud costs.
Read how they did it ›
Automate your infrastructure for seamless operations
With Canonical’s infrastructure automation framework, you can create, maintain, and manage everything that runs on your infrastructure – from the host OS to thousands of containers and VMs – with ease.
- Get automatic updates and unattended security patches for all your apps, for years to come.
- You can manage everything from a single, centralized Juju controller – or on each layer of your infrastructure.
- Get apps that don’t break after updates. Your optimal configurations persist even if one of the applications is scaled or upgraded, or the configuration changes.
Optimize your virtualization layer
Take your virtualization to new heights, with better performance, a reduced attack surface, and more efficient operations.
- Unlock your most efficient virtualization layer yet.
- Streamline your VM experience with optimized choices, an image library, and a built-in agent for easier operations.
- Run same type of workload as VMs but with resource efficiency in system containers.
- Manage your workloads with ease and configure them with ease via a user-friendly web interface.
Automate a highly available platform for all your apps and services
Build infrastructure that deeply supports everything you own and run, no matter where it’s running.
- Deploy highly available applications, with the power to create and maintain your secure containers.
- Runs on premise, on the cloud, and at the edge.
- Kubernetes deploys and grows seamlessly, from containers on your first laptop to thousands of instances in the data centre.
- Get native, lightning-fast integration with Juju.
Build a cloud with full transparency, through open source
Create your transparent, trusted, and vendor-free cloud that supports all your apps and services with unrivaled transparency that’s built on a global trust network.
- Build and deploy open source cloud that supports everything that you do: whether you’re supporting apps on legacy hardware, or building a data center that runs like a cloud.
- Get on-demand compute and automate resource provisioning across all your hardware.
- Avoid vendor lock in and meet strict regional compliance requirements.
- Get a performant, scalable cloud that deploys in minutes – with up to 70% saved on TCO.
Customers adopting our management tooling have saved over $200,000 over the course of 3 years.*
*Source: Enterprise Management Associates report
Apps that manage themselves, for their entire lifecycle
Manage, configure, and securely configure all your apps and their integrations across any platform or cloud. Get observability, patching, identity, secret management, and more for your infra, services, and systems – so that you can focus on building and scaling. Our charmed applications come with a secure-by-default configuration out the box without any additional hardening steps.
Automate operations across cloud, metal, VMs and Kubernetes
Charms allow you to use a single codebase to automate the lifecycle management of your system across Kubernetes containers, Linux containers, virtual machines, and bare metal machines, on public or private clouds.
- Create an apps ecosystem that works anywhere – on multiple cloud backends, different controllers, and different clouds, or even across virtual machines and Kubernetes.
- Automate the deployment, management and configuration of your host OS and all your VMs.
- Deploy, manage, and integrate software across Kubernetes, Linux containers, VMs, bare metal machines, public cloud, or private clouds.
- Customize everything to your needs, with a scriptable API that integrates easily into your internal tools and processes.
Seamless integrations across different clouds
Automatically apply required networking and configuration changes for fast and easy integrations – even if the workloads are deployed across different clouds (e.g. Openstack and AWS).
- Seamlessly connect and integrate applications across clouds, automatically.
- Connect, configure, integrate and maintain all of your apps and services in a single model, across their entire lifecycle.
- Enjoy uninterrupted use of all major cloud providers.
Lifecycle management for your system, not individual applications
Go beyond per-app management, and optimize the lifecycle management of your entire system.
- Keep all your apps automatically configured, updated, and security maintained, for their entire lifecycle.
- Unlock persistent configurations for your apps and services, so they stay working no matter what changes happen.
- Get automatic updates and unattended security patches for all your apps, for years to come.
- You can manage everything from a single, centralized Juju controller – or on each layer of your infrastructure.
Simplify compliance
Our security and support tools make it easier than ever to apply security hardening, automate security patching and vulnerability management, and get around-the-clock coverage – all leading to a simplified compliance pathway.
Apply hardening and configs at scale across your whole estate
Build systems with security in mind from Day 0, with out-the-box hardening and one-click security deployments.
- Easily define, configure, and deploy hardening across your estate – from apps to bare metal.
- Confidently deploy critical workloads while meeting rigorous cybersecurity standards, such as the CRA, PCI-DSS, FedRAMP, and more.
- Automate the application and auditing of security baselines, through pre-packaged CIS Benchmarks and DISA-STIGs.
- Our charmed apps are designed to be secure by default.
Turn on automated defences against your greatest security threats
Get automated and unattended security maintenance for all your bare metal, infra, apps and services – even in airgapped or isolated environments.
- Get security maintenance across your bare metal, containers, VMs, OS, and apps – no matter where they are.
- Automate vulnerability management, with security maintenance for the OS and 36,000+ open source packages.
- Maintain stability of your systems and reduce downtime – security updates are tested to maintain compatibility.
- Get fast remediation for CVEs, and expert support that comes with industry-leading SLAs.
- Get security coverage for up to 12 years with Ubuntu Pro and its Legacy Support add-on.
Reduce downtime and exploit windows with livepatching
Automatically patch the Linux kernel between security maintenance windows, while the system runs, and reduce your exploit window for critical and high severity Linux kernel vulnerabilities.
- Livepatch reduces the unplanned work that comes from Linux kernel vulnerabilities.
- Reduce downtime and maximize your productivity during work hours through livepatching and scheduled maintenance.
- Define your rollout policy and remain in full control of which machines will get updated and when.
Get around-the-clock visibility of the latest vulnerabilities
We track all known vulnerabilities that affect Ubuntu packages, giving you up-to-date awareness and timely fixes for the risks that keep you up at night.
- Get information about the latest vulnerabilities, as well as the latest available fixes for them.
- Unlock observability and monitoring of the entire stack from a single pane of glass.
- Get 24/7 monitoring, observability, alerting, capacity planning and continuous service checks to ensure optimal operations.
- Vulnerability notices are available in human- and machine-readable industry-standard formats (including OVAL, OSV, and VEX), that can be integrated with any third-party tool that supports them.
See our solutions in action
“Where other infrastructure providers in Switzerland that use traditional technologies might charge customers a premium uplift per year, we can offer the same capabilities for ten times less while still achieving a better margin.”
Thomas Taroni
VP Product, Phoenix Systems
“The benefits have been astounding. Transitioning to bare-metal servers has provided us with dedicated resources [… and] complete control over our hardware. Overall, we cut out cloud costs by over 76%. Now, we can customize every aspect of our infrastructure, from the operating system and network architecture to the type and amount of storage used.”
Nawaz Dhandala
Founder and CEO of OneUptime
“We wanted one partner for the whole on-premise cloud because we’re not just supporting Kubernetes but also our Ceph clusters and managed Postgres. Being able to scale and take advantage of the public cloud, while being able to keep critical infrastructure here on site – these are all advantages.”
Michael Hawkshaw
Mission Operations Infrastructure IT Service Manager at ESA
“We wanted to consolidate onto a single, open platform. That way, we wouldn’t be tied to a single vendor, and we’d be able to change parameters at will. Canonical offered the most attractive licensing model for enterprise OpenStack support. Whereas other vendors wanted us to licence every OS we spun up in our environment, Canonical only charges per node. Particularly in the long term, Canonical’s approach is more cost-effective.”
Macdonald Chamba
Head of Infrastructure and Cloud Services at Telekom Networks Malawi